Comments on: Programming SSL for Jetty based CXF services http://aruld.info/programming-ssl-for-jetty-based-cxf-services/ Technology++ Fri, 28 Oct 2011 18:10:18 +0000 hourly 1 http://wordpress.org/?v=3.0.1 By: siva naresh http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-4000 siva naresh Tue, 13 Jul 2010 10:26:10 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-4000 nice info out here. I have a problem here. I donot know how the webservice is hosted using ssl. so the client is not wary of the certificates that it would recieve from the server. How does it handle here? should it download the certificate and import it to its trusted certificate list ? nice info out here.
I have a problem here. I donot know how the webservice is hosted using ssl.

so the client is not wary of the certificates that it would recieve from the server.

How does it handle here?

should it download the certificate and import it to its trusted certificate list ?

]]> By: Victor http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3980 Victor Tue, 23 Mar 2010 08:09:04 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3980 Hi, thanks for the solution. I had the same problem as gel. javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake i hosted my server for a client to call, no browser involve. any idea what is wrong? thanks in advance :) Hi, thanks for the solution.

I had the same problem as gel.

javax.net.ssl.SSLHandshakeException: Remote host closed connection during handshake

i hosted my server for a client to call, no browser involve. any idea what is wrong?

thanks in advance :)

]]> By: Armin http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3883 Armin Fri, 05 Jun 2009 17:00:43 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3883 Thanks for the useful information, I haven't run the sample but I needed some info on this subject and now I have it. Thanks for the useful information, I haven’t run the sample but I needed some info on this subject and now I have it.

]]> By: Arul http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3873 Arul Thu, 07 May 2009 19:55:47 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3873 Awesome. I am glad you were able to resolve it. -Arul Awesome. I am glad you were able to resolve it.

-Arul

]]> By: paulbrickell http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3872 paulbrickell Thu, 07 May 2009 14:07:05 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3872 Ref my own post at May 7th, 2009 at 7:37 am. I got this error even after importing all the certificates explicitly. But After a restart of firefox I got a warning about low grade security, clicked OK and the page did load. Ref my own post at May 7th, 2009 at 7:37 am.

I got this error even after importing all the certificates explicitly.

But After a restart of firefox I got a warning about low grade security, clicked OK and the page did load.

]]> By: paulbrickell http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3871 paulbrickell Thu, 07 May 2009 13:37:58 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3871 If I try to access the url with firefox I get an error page with... Peer's certificate has an invalid signature. Error code: sec_error_bad_signature On the server I get... WARNING: EXCEPTION javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150) at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:117) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:1650) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:925) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1089) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1116) at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1100) at org.mortbay.jetty.security.SslSocketConnector$SslConnection.run(SslSocketConnector.java:615) at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:450) Any ideas? BTW thanks for the blog. If I try to access the url with firefox I get an error page with…

Peer’s certificate has an invalid signature.

Error code: sec_error_bad_signature

On the server I get…

WARNING: EXCEPTION
javax.net.ssl.SSLHandshakeException: Received fatal alert: handshake_failure
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:150)
at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Alerts.java:117)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.recvAlert(SSLSocketImpl.java:1650)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:925)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1089)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1116)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1100)
at org.mortbay.jetty.security.SslSocketConnector$SslConnection.run(SslSocketConnector.java:615)
at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:450)

Any ideas?

BTW thanks for the blog.

]]> By: Arul http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3858 Arul Wed, 01 Apr 2009 03:36:44 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3858 Jasser, I am glad this entry was useful to you. -Arul Jasser,

I am glad this entry was useful to you.

-Arul

]]> By: jasser http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3856 jasser Mon, 30 Mar 2009 09:57:57 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3856 Thanks a lot for sharing Java API for SSL ws configuration. Thanks a lot for sharing Java API for SSL ws configuration.

]]> By: Arul http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3854 Arul Sat, 28 Feb 2009 23:41:10 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3854 Ashish, I used the certificates distributed with the wsdl_first_https CXF sample. This sample also ships a script (gencerts.sh) which does this for you. You can access the script from SVN here: http://svn.apache.org/repos/asf/cxf/tags/cxf-2.1.4/distribution/src/main/release/samples/wsdl_first_https/bin/gencerts.sh -Arul Ashish,

I used the certificates distributed with the wsdl_first_https CXF sample. This sample also ships a script (gencerts.sh) which does this for you. You can access the script from SVN here: http://svn.apache.org/repos/asf/cxf/tags/cxf-2.1.4/distribution/src/main/release/samples/wsdl_first_https/bin/gencerts.sh

-Arul

]]> By: Ashish http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3853 Ashish Fri, 27 Feb 2009 09:20:08 +0000 http://aruld.info/programming-ssl-for-jetty-based-cxf-services/#comment-3853 Arul, Can you also tell us, how to generate the certificates used with this article Arul,

Can you also tell us, how to generate the certificates used with this article

]]>